$ rpki-client -vvf rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft File: 99ZBYbOgStTlnAFz47gHWSgtQ8E.mft (raw, json) Hash identifier: YG2lFUYs11begCMXFPQeTu+KmuuvXSpytzoAwTLBziE= Subject key identifier: 2D:D3:2E:33:7A:D2:EB:98:39:02:9F:F9:F3:78:88:74:28:40:C5:05 Authority key identifier: F7:D6:41:61:B3:A0:4A:D4:E5:9C:01:73:E3:B8:07:59:28:2D:43:C1 Certificate issuer: /CN=A919C7A9/serialNumber=F7D64161B3A04AD4E59C0173E3B80759282D43C1 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99ZBYbOgStTlnAFz47gHWSgtQ8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft Manifest number: 0112 Signing time: Thu 03 Apr 2025 04:15:08 +0000 Manifest this update: Thu 03 Apr 2025 04:15:07 +0000 Manifest next update: Thu 10 Apr 2025 04:15:07 +0000 Files and hashes: 1: 99ZBYbOgStTlnAFz47gHWSgtQ8E.crl (hash: aYwvJiay3gCwj74tgKD/nuX0TJ8peGFKNNYteYF6TJI=) 2: 1ADFE79AE05211EFBD383A20C4F9AE02.roa (hash: jbtypmu4PtZLNmhNfVSpXJscyb+qfRqutu0axWM/TEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.crl rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99ZBYbOgStTlnAFz47gHWSgtQ8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C7A9 Validity Not Before: Apr 3 04:15:07 2025 GMT Not After : Apr 10 04:15:07 2025 GMT Subject: CN=67ee0b4b-f7d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:eb:24:16:da:5c:9b:cd:47:f9:66:ff:35:1b: 21:b1:26:f9:03:ea:b5:2d:8a:2c:f1:e4:6b:f2:53: 3e:89:6c:ca:fd:a9:64:f8:4e:26:77:7a:8c:0d:7d: 13:56:53:3d:7d:ac:ac:6c:e0:92:01:2f:15:da:7c: 9f:92:73:88:92:92:fa:4b:a9:dd:3f:9d:4f:68:83: 87:c2:44:f7:58:a4:b7:8a:0d:b4:28:e1:fa:e5:e9: 40:5d:34:cd:36:73:1a:55:b2:82:78:b4:69:03:da: 75:0a:ae:b4:2a:77:5a:09:fc:70:e9:4e:51:0b:be: 82:d6:d8:f7:42:d2:a2:b1:3d:57:34:0f:75:90:6b: 94:12:4a:de:64:32:91:98:16:84:c4:58:86:d1:55: d5:89:5a:ff:74:b6:0a:85:84:08:34:6d:74:4e:81: a5:ea:f8:4f:a3:f9:d5:e6:9f:71:87:13:99:d6:25: ee:0a:53:9e:ca:0b:44:2d:df:b3:b0:41:8e:48:5b: 3d:4e:42:2d:b3:d6:da:ed:24:3f:14:8b:4c:2c:e1: be:c5:e7:65:28:13:50:92:fd:05:5a:62:56:74:6a: b3:41:3b:b9:9d:5e:95:c3:94:bb:b5:43:20:d6:63: b2:45:68:d2:bd:89:bd:08:8f:b2:13:16:22:57:e5: 7d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:D3:2E:33:7A:D2:EB:98:39:02:9F:F9:F3:78:88:74:28:40:C5:05 X509v3 Authority Key Identifier: keyid:F7:D6:41:61:B3:A0:4A:D4:E5:9C:01:73:E3:B8:07:59:28:2D:43:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99ZBYbOgStTlnAFz47gHWSgtQ8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:ea:f2:0b:59:12:42:59:ea:47:8c:f4:00:25:a9:4e:4c:be: 37:96:d2:47:c3:cd:86:a1:c5:93:08:24:04:11:89:91:19:44: 17:a7:7f:00:71:42:91:52:ee:9e:c2:ba:0f:2b:8e:5a:a7:f4: ae:8f:bf:7f:84:57:63:bb:98:7c:dc:71:35:ba:dd:62:89:6c: 76:42:f9:54:86:0d:73:fd:61:10:5a:75:78:b1:14:65:4e:e4: 99:c1:81:e2:cd:a7:26:d2:0a:08:e6:d6:b5:d9:4d:01:fc:85: b5:5c:2c:1d:e9:05:c6:9f:09:0d:18:bf:cd:c5:98:72:56:f8: 6f:3b:eb:ca:64:40:b2:65:04:80:79:aa:97:90:df:97:68:2d: b6:24:6b:60:83:3c:4e:0b:c8:93:36:05:59:78:f3:2d:91:e5: ec:71:5e:28:81:f0:5e:14:a1:84:69:8b:bc:31:01:e1:7d:b6: 64:e6:b2:e1:57:37:73:1e:7f:8b:70:6f:98:b9:86:bc:36:76: c9:60:79:10:e0:ff:b6:fe:13:fa:c9:e2:70:1a:1f:a7:4f:eb: 68:d9:2e:f2:82:d1:eb:ce:0f:49:58:83:b6:18:1b:c2:7b:c6: 3d:7c:5d:26:39:94:51:e6:90:6e:f1:9e:b4:6e:3f:44:dd:f2: a8:b3:be:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3QTkxMTAvBgNVBAUTKEY3RDY0MTYxQjNBMDRBRDRFNTlDMDE3M0UzQjgwNzU5 MjgyRDQzQzEwHhcNMjUwNDAzMDQxNTA3WhcNMjUwNDEwMDQxNTA3WjAYMRYwFAYD VQQDEw02N2VlMGI0Yi1mN2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+skFtpcm81H+Wb/NRshsSb5A+q1LYos8eRr8lM+iWzK/alk+E4md3qMDX0T VlM9faysbOCSAS8V2nyfknOIkpL6S6ndP51PaIOHwkT3WKS3ig20KOH65elAXTTN NnMaVbKCeLRpA9p1Cq60KndaCfxw6U5RC76C1tj3QtKisT1XNA91kGuUEkreZDKR mBaExFiG0VXViVr/dLYKhYQING10ToGl6vhPo/nV5p9xhxOZ1iXuClOeygtELd+z sEGOSFs9TkIts9ba7SQ/FItMLOG+xedlKBNQkv0FWmJWdGqzQTu5nV6Vw5S7tUMg 1mOyRWjSvYm9CI+yExYiV+V9CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3TLjN6 0uuYOQKf+fN4iHQoQMUFMB8GA1UdIwQYMBaAFPfWQWGzoErU5ZwBc+O4B1koLUPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzdBOS9BRkEwRTJBNDgx RTMxMUVFODM4REE1MEFDNEY5QUUwMi85OVpCWWJPZ1N0VGxuQUZ6NDdnSFdTZ3RR OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk5WkJZYk9nU3RUbG5BRno0N2dIV1NndFE4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzdBOS9BRkEwRTJBNDgxRTMxMUVFODM4REE1MEFDNEY5QUUwMi85OVpCWWJPZ1N0 VGxuQUZ6NDdnSFdTZ3RROEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh6vILWRJCWepHjPQAJalOTL43ltJHw82GocWTCCQEEYmRGUQXp38A cUKRUu6ewroPK45ap/Suj79/hFdju5h83HE1ut1iiWx2QvlUhg1z/WEQWnV4sRRl TuSZwYHizacm0goI5ta12U0B/IW1XCwd6QXGnwkNGL/NxZhyVvhvO+vKZECyZQSA eaqXkN+XaC22JGtggzxOC8iTNgVZePMtkeXscV4ogfBeFKGEaYu8MQHhfbZk5rLh VzdzHn+LcG+YuYa8NnbJYHkQ4P+2/hP6yeJwGh+nT+to2S7ygtHrzg9JWIO2GBvC e8Y9fF0mOZRR5pBu8Z60bj9E3fKos77T -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:30 2025 by rpki-client